Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: products Clear
ID Title
CVE-2013-7428 Vulnerability in dos (CVE-2013-7428)
vulnerability in dos (CVE-2013-7428). Risk of unauthorized operations or information disclosure.
CVE-2017-9834 SQL Injection in wordpress (CVE-2017-9834)
SQL injection in wordpress (CVE-2017-9834). Successful exploitation can lead to full system takeover.
CVE-2017-12838 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-12838)
vulnerability in csrf (CVE-2017-12838). Successful exploitation can lead to full system takeover.
CVE-2017-12906 Cross-Site Scripting (XSS) in nexusphp-project (CVE-2017-12906)
cross-site scripting in nexusphp-project (CVE-2017-12906). Risk of unauthorized operations or information disclosure.
CVE-2015-3250 Information Disclosure in apache (CVE-2015-3250)
vulnerability in apache (CVE-2015-3250). Confidential information can be exposed externally.
CVE-2017-12416 Cross-Site Scripting (XSS) in paloaltonetworks (CVE-2017-12416)
cross-site scripting in paloaltonetworks (CVE-2017-12416). Risk of unauthorized operations or information disclosure.
CVE-2017-9458 XXE (XML External Entity) in ssrf (CVE-2017-9458)
vulnerability in ssrf (CVE-2017-9458). Successful exploitation can lead to full system takeover.
CVE-2017-14172 Vulnerability in c (CVE-2017-14172)
vulnerability in c (CVE-2017-14172). Risk of unauthorized operations or information disclosure.
CVE-2017-14173 Vulnerability in c (CVE-2017-14173)
vulnerability in c (CVE-2017-14173). Risk of unauthorized operations or information disclosure.
CVE-2017-14174 Vulnerability in c (CVE-2017-14174)
vulnerability in c (CVE-2017-14174). Risk of unauthorized operations or information disclosure.
CVE-2017-14175 Vulnerability in c (CVE-2017-14175)
vulnerability in c (CVE-2017-14175). Risk of unauthorized operations or information disclosure.
CVE-2015-6250 Information Disclosure in simple-php-captcha-project (CVE-2015-6250)
vulnerability in simple-php-captcha-project (CVE-2015-6250). Risk of unauthorized operations or information disclosure.
CVE-2015-7241 XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
CVE-2016-3086 Information Disclosure in apache (CVE-2016-3086)
vulnerability in apache (CVE-2016-3086). Successful exploitation can lead to full system takeover.
CVE-2017-14145 SQL Injection in sqli (CVE-2017-14145)
SQL injection in sqli (CVE-2017-14145). Successful exploitation can lead to full system takeover.
CVE-2017-14146 Code Injection in helpdezk (CVE-2017-14146)
code injection in helpdezk (CVE-2017-14146). Successful exploitation can lead to full system takeover.
CVE-2017-14149 Vulnerability in c (CVE-2017-14149)
vulnerability in c (CVE-2017-14149). Risk of unauthorized operations or information disclosure.
CVE-2017-14137 Vulnerability in c (CVE-2017-14137)
vulnerability in c (CVE-2017-14137). Risk of unauthorized operations or information disclosure.
CVE-2017-14138 Vulnerability in c (CVE-2017-14138)
vulnerability in c (CVE-2017-14138). Successful exploitation can lead to full system takeover.
CVE-2017-14139 ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
CVE-2017-14123 Unrestricted File Upload in zohocorp (CVE-2017-14123)
vulnerability in zohocorp (CVE-2017-14123). Successful exploitation can lead to full system takeover.
CVE-2017-14118 OS Command Injection in eyesofnetwork (CVE-2017-14118)
OS command injection in eyesofnetwork (CVE-2017-14118). Successful exploitation can lead to full system takeover.
CVE-2017-14119 OS Command Injection in eyesofnetwork (CVE-2017-14119)
OS command injection in eyesofnetwork (CVE-2017-14119). Successful exploitation can lead to full system takeover.
CVE-2017-14120 Path Traversal in path-traversal (CVE-2017-14120)
path traversal in path-traversal (CVE-2017-14120). Confidential information can be exposed externally.
CVE-2017-14121 Vulnerability in c (CVE-2017-14121)
vulnerability in c (CVE-2017-14121). Risk of unauthorized operations or information disclosure.
CVE-2017-14122 Out-of-Bounds Read in c (CVE-2017-14122)
vulnerability in c (CVE-2017-14122). Confidential information can be exposed externally.
CVE-2017-12871 Vulnerability in simplesamlphp (CVE-2017-12871)
vulnerability in simplesamlphp (CVE-2017-12871). Confidential information can be exposed externally.
CVE-2017-12691 Vulnerability in c (CVE-2017-12691)
vulnerability in c (CVE-2017-12691). Risk of unauthorized operations or information disclosure.
CVE-2017-12692 Vulnerability in c (CVE-2017-12692)
vulnerability in c (CVE-2017-12692). Risk of unauthorized operations or information disclosure.
CVE-2017-12693 Vulnerability in c (CVE-2017-12693)
vulnerability in c (CVE-2017-12693). Risk of unauthorized operations or information disclosure.
CVE-2017-14105 Vulnerability in tomcat (CVE-2017-14105)
vulnerability in tomcat (CVE-2017-14105). Successful exploitation can lead to full system takeover.
CVE-2017-10851 Vulnerability in fujixerox (CVE-2017-10851)
vulnerability in fujixerox (CVE-2017-10851). Successful exploitation can lead to full system takeover.
CVE-2017-12868 Vulnerability in simplesamlphp (CVE-2017-12868)
vulnerability in simplesamlphp (CVE-2017-12868). Successful exploitation can lead to full system takeover.
CVE-2017-12869 Vulnerability in simplesamlphp (CVE-2017-12869)
vulnerability in simplesamlphp (CVE-2017-12869). Data can be tampered with by attackers.
CVE-2014-8677 Code Injection in soplanning (CVE-2014-8677)
code injection in soplanning (CVE-2014-8677). Data can be tampered with by attackers.
CVE-2015-7711 Cross-Site Scripting (XSS) in atutor (CVE-2015-7711)
cross-site scripting in atutor (CVE-2015-7711). Risk of unauthorized operations or information disclosure.
CVE-2016-10508 Cross-Site Scripting (XSS) in phpthumb-project (CVE-2016-10508)
cross-site scripting in phpthumb-project (CVE-2016-10508). Risk of unauthorized operations or information disclosure.
CVE-2016-10509 SQL Injection in sqli (CVE-2016-10509)
SQL injection in sqli (CVE-2016-10509). Successful exploitation can lead to full system takeover.
CVE-2016-10510 Cross-Site Scripting (XSS) in kohanaframework (CVE-2016-10510)
cross-site scripting in kohanaframework (CVE-2016-10510). Risk of unauthorized operations or information disclosure.
CVE-2017-14076 SQL Injection in sqli (CVE-2017-14076)
SQL injection in sqli (CVE-2017-14076). Successful exploitation can lead to full system takeover.
CVE-2017-14069 SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
CVE-2017-14070 Cross-Site Scripting (XSS) in nexusphp (CVE-2017-14070)
cross-site scripting in nexusphp (CVE-2017-14070). Risk of unauthorized operations or information disclosure.
CVE-2017-14060 Vulnerability in c (CVE-2017-14060)
vulnerability in c (CVE-2017-14060). Risk of unauthorized operations or information disclosure.
CVE-2017-11158 Vulnerability in synology (CVE-2017-11158)
vulnerability in synology (CVE-2017-11158). Successful exploitation can lead to full system takeover.
CVE-2017-13670 Vulnerability in blackcat-cms (CVE-2017-13670)
vulnerability in blackcat-cms (CVE-2017-13670). Data can be tampered with by attackers.
CVE-2017-14048 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14048)
vulnerability in csrf (CVE-2017-14048). Successful exploitation can lead to full system takeover.
CVE-2017-14049 Cross-Site Scripting (XSS) in blackcat-cms (CVE-2017-14049)
cross-site scripting in blackcat-cms (CVE-2017-14049). Risk of unauthorized operations or information disclosure.
CVE-2017-14050 Unrestricted File Upload in blackcat-cms (CVE-2017-14050)
vulnerability in blackcat-cms (CVE-2017-14050). Successful exploitation can lead to full system takeover.
CVE-2017-14035 CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
CVE-2017-14036 CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →